CVE-2019-1000018

CVE-2019-1000018

rssh version 2.3.4 contains a CWE-77: Improper Neutralization of Special Elements used in a Command (‘Command Injection’) vulnerability in allowscp permission that can result in Local command execution. This attack appear to be exploitable via An authorized SSH user with the allowscp permission.

Source: CVE-2019-1000018

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다